dumpspedia logo
A Vault Administrator team member can log in to CyberArk, but for some reason, is not given Vault Admin rights.
Where can you check to verify that the Vault Admins directory mapping points to the correct AD group?
A company requires challenge/response multi-factor authentication for PSMP sessions. Which server must you integrate with the CyberArk vault?
Match the Status of Service on a DR Vault to what is displayed when it is operating normally in Replication mode.
Which CyberArk utility allows you to create lists of Master Policy Settings, owners and safes for output to text files or MSSQL databases?
It is possible to control the hours of the day during which a user may log into the vault.
You are creating a Dual Control workflow for a team’s safe.
Which safe permissions must you grant to the Approvers group?
You are helping a customer prepare a Windows server for PSM installation. What is required for a successful installation?
The primary purpose of exclusive accounts is to ensure non-repudiation (Individual accountability).
CyberArk user Neil is trying to connect to the Target Linux server 192.168.1.64 using a domain account ACME/linuxuser01 on Domain Acme.corp using PSM for SSH server 192.168.65.145. What is the correct syntax?
You are logging into CyberArk as the Master user to recover an orphaned safe.
Which items are required to log in as Master?
Which components can connect to a satellite Vault in distributed Vault architecture?
Which utilities could you use to change debugging levels on the vault without having to restart the vault. Select all that apply.
Which option in the PrivateArk client is used to update users' Vault group memberships?
PSM for Windows (previously known as “RDP Proxy”) supports connections to the following target systems
Which of the following files must be created or configured m order to run Password Upload Utility? Select all that apply.
Due to network activity, ACME Corp’s PrivateArk Server became active on the OR Vault while the Primary Vault was also running normally. All the components continued to point to the Primary Vault.
Which steps should you perform to restore DR replication to normal?
Which of the following Privileged Session Management solutions provide a detailed audit log of session activities?
Which command configures email alerts within PTA if settings need to be changed post install?
Customers who have the ‘Access Safe without confirmation’ safe permission on a safe where accounts are configured for Dual control, still need to request approval to use the account.
Users are unable to launch Web Type Connection components from the PSM server. Your manager asked you to open the case with CyberArk Support.
Which logs will help the CyberArk Support Team debug the issue? (Choose three.)
In accordance with best practice, SSH access is denied for root accounts on UNIX/LINUX system. What is the BEST way to allow CPM to manage root accounts.
To manage automated onboarding rules, a CyberArk user must be a member of which group?
As long as you are a member of the Vault Admins group you can grant any permission on any safe.
You are onboarding 5,000 UNIX root accounts for rotation by the CPM. You discover that the CPM is unable to log in directly with the root account and will need to use a secondary account.
How should this be configured to allow for password management using least privilege?
A new domain controller has been added to your domain. You need to ensure the CyberArk infrastructure can use the new domain controller for authentication.
Which locations must you update?
Users who have the 'Access Safe without confirmation' safe permission on a safe where accounts are configured for Dual control, still need to request approval to use the account.
The Vault administrator can change the Vault license by uploading the new license to the system Safe.
If the AccountUploader Utility is used to create accounts with SSH keys, which parameter do you use to set the full or relative path of the SSH private key file that will be attached to the account?
What is the name of the Platform parameters that controls how long a password will stay valid when One Time Passwords are enabled via the Master Policy?
Which combination of Safe member permissions will allow end users to log in to a remote machine transparently but NOT show or copy the password?
When a DR Vault Server becomes an active vault, it will automatically fail back to the original state once the Primary Vault comes back online.
Ad-Hoc Access (formerly Secure Connect) provides the following features. Choose all that apply.
In order to connect to a target device through PSM, the account credentials used for the connection must be stored in the vault?
When running a “Privileged Accounts Inventory” Report through the Reports page in PVWA on a specific safe, which permission/s are required on that safe to show complete account inventory information?
All of your Unix root passwords are stored in the safe UnixRoot. Dual control is enabled for some of the accounts in that safe. The members of the AD group UnixAdmins need to be able to use the show, copy, and connect buttons on those passwords at any time without confirmation. The members of the AD group Operations Staff need to be able to use the show, copy and connect buttons on those passwords on an emergency basis, but only with the approval of a member of Operations Managers never need to be able to use the show, copy or connect buttons themselves.
Which safe permission do you need to grant Operations Staff? Check all that apply.
Which parameter controls how often the CPM looks for accounts that need to be changed from recently completed Dual control requests.
It is possible to leverage DNA to provide discovery functions that are not available with auto-detection.
Which parameter controls how often the CPM looks for Soon-to-be-expired Passwords that need to be changed.
For a safe with Object Level Access enabled you can turn off Object Level Access Control when it no longer needed on the safe.
Which of the Following can be configured in the Master Poky? Choose all that apply.
Which of the following components can be used to create a tape backup of the Vault?
TESTED 22 Nov 2024
